metasploit | 53dfc7264954dcf97f158a13ec7470ddbeb8bde33c6b3ce66358e7efa74a0da4 | Triage

Sharing

General

Target

cal.pdf
Size

45KB
Sample

241228-p5krtsxrfy
MD5

d03d0c8f24b109e6de668e082e214ccb
SHA1

db935d6f7fd646daa760a9f760fc99587f7901be
SHA256

53dfc7264954dcf97f158a13ec7470ddbeb8bde33c6b3ce66358e7efa74a0da4
SHA512

922bf374aee29bb80a5727ab0fe02d3a1f35c0555da71f0549f48fcbfbc5b5f3407304da2c4b9540e88d8a701e0b206e60c43008f214f23872f106f68fe17c9d
SSDEEP

768:cPcrNfC+uk7HylJ6NOmZmH9mZ8D7NAv8OVhpX247LuXwDZo1GHqwV2jiEfqkvcYR:cEhayc7waCv8IhpXnSXwDZoQHB2jFykj

Score

10^/10

metasploit backdoor discovery javascript pdf trojan

Malware Config

Extracted

Family

metasploit

Version

windows/exec

Targets

- Target
  
  cal.pdf
- Size
  
  45KB
- MD5
  
  d03d0c8f24b109e6de668e082e214ccb
- SHA1
  
  db935d6f7fd646daa760a9f760fc99587f7901be
- SHA256
  
  53dfc7264954dcf97f158a13ec7470ddbeb8bde33c6b3ce66358e7efa74a0da4
- SHA512
  
  922bf374aee29bb80a5727ab0fe02d3a1f35c0555da71f0549f48fcbfbc5b5f3407304da2c4b9540e88d8a701e0b206e60c43008f214f23872f106f68fe17c9d
- SSDEEP
  
  768:cPcrNfC+uk7HylJ6NOmZmH9mZ8D7NAv8OVhpX247LuXwDZo1GHqwV2jiEfqkvcYR:cEhayc7waCv8IhpXnSXwDZoQHB2jFykj
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  template.pdf
- Size
  
  72KB
- MD5
  
  6023c9a1163c3b65d7f485c2008a0ea6
- SHA1
  
  8327f120befcf9035db475d5e5b80aa8df02a88d
- SHA256
  
  0455b37cea2e006987f4ac2790fec5a10819fb17209656dea4ba5bd607a896d2
- SHA512
  
  85ef4fb483ba4789f91d12125f549122880abd625648db8e1c2206e67fb12fefeb81cd082094780ca4bf5ddbe40db006d8bee57f80b8867c5b7ffa68f70dc839
- SSDEEP
  
  1536:Ik24boL4UIKw+aSPUEN2moBTvsMXFJMb+KR0Nc8QsJq39:/hboLrIKwGPAmaDJe0Nc8QsC9
Score

10^/10

discovery metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
- Metasploit family
  metasploit
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

pdfjavascriptmetasploit

behavioral1

behavioral2

behavioral3

behavioral4

metasploitbackdoordiscoverytrojan